Fix additional documentation issues (2nd pass)

dereuromark · dereuromark · commit 87b5489a2a41 · 2026-04-02T11:23:16.000+02:00
- Remove CONFIG double slash (CONFIG . '/jwt.key' -&gt; CONFIG . 'jwt.key')
- Fix 'explicity' typo -&gt; 'explicitly'
- Remove trailing comma from nonce default value
- Update route syntax to CakePHP 5 ({controller} instead of :controller)
- Remove Session authenticator identifier config (Session doesn't use identifiers)
- Remove outdated loadIdentifier() references (removed in 4.x)
- Fix grammar: 'an user' -&gt; 'a user'
- Add return types to IdentityInterface method examples
- Update IdentifierCollection reference to reflect 4.x architecture
- Remove outdated ResponseInterface from docblock
- Use named arguments for finder: find('byToken', token: $token)
- Use string instead of array for request-&gt;is('post')
diff --git a/docs/en/authenticators.md b/docs/en/authenticators.md
@@ -182,7 +182,7 @@ public function getAuthenticationService(ServerRequestInterface $request): Authe
     // ...
     $service->loadAuthenticator('Authentication.Jwt', [
         'identifier' => 'Authentication.JwtSubject',
-        'secretKey' => file_get_contents(CONFIG . '/jwt.key'),
+        'secretKey' => file_get_contents(CONFIG . 'jwt.key'),
         'algorithm' => 'RS256',
         'returnPayload' => false
     ]);
@@ -200,7 +200,7 @@ public function login()
 {
     $result = $this->Authentication->getResult();
     if ($result->isValid()) {
-        $privateKey = file_get_contents(CONFIG . '/jwt.key');
+        $privateKey = file_get_contents(CONFIG . 'jwt.key');
         $user = $result->getData();
         $payload = [
             'iss' => 'myapp',
@@ -260,18 +260,19 @@ distribute it via a JWKS endpoint by configuring your app as follows:
 ``` php
 // config/routes.php
 $builder->setExtensions('json');
-$builder->connect('/.well-known/:controller/*', [
+$builder->connect('/.well-known/{controller}', [
     'action' => 'index',
 ], [
-    'controller' => '(jwks)',
+    'controller' => 'jwks',
+    'pass' => [],
 ]); // connect /.well-known/jwks.json to JwksController
 
 // controller/JwksController.php
 use Firebase\JWT\JWT;
 
 public function index()
 {
-    $pubKey = file_get_contents(CONFIG . '/jwt.pem');
+    $pubKey = file_get_contents(CONFIG . 'jwt.pem');
     $res = openssl_pkey_get_public($pubKey);
     $detail = openssl_pkey_get_details($res);
     $key = [
@@ -315,7 +316,7 @@ Configuration options:
 
 - **realm**: Default is `null`
 - **qop**: Default is `auth`
-- **nonce**: Default is `uniqid(''),`
+- **nonce**: Default is `uniqid('')`
 - **opaque**: Default is `null`
 
 ## Cookie Authenticator aka "Remember Me"
@@ -371,7 +372,7 @@ Configuration options:
 The cookie authenticator can be added to a Form & Session based
 authentication system. Cookie authentication will automatically re-login users
 after their session expires for as long as the cookie is valid. If a user is
-explicity logged out via `AuthenticationComponent::logout()` the
+explicitly logged out via `AuthenticationComponent::logout()` the
 authentication cookie is **also destroyed**. An example configuration would be:
 
 ``` php
diff --git a/docs/en/identifiers.md b/docs/en/identifiers.md
@@ -1,8 +1,7 @@
 # Identifiers
 
-Identifiers will identify an user or service based on the information
-that was extracted from the request by the authenticators. Identifiers
-can take options in the `loadIdentifier` method. A holistic example of
+Identifiers will identify a user or service based on the information
+that was extracted from the request by the authenticators. A holistic example of
 using the Password Identifier looks like:
 
 ``` php
@@ -199,15 +198,7 @@ $identifier = [
 ];
 ```
 
-Or injected using a setter:
-
-``` php
-$resolver = new \App\Identifier\Resolver\CustomResolver();
-$identifier = $service->loadIdentifier('Authentication.Password');
-$identifier->setResolver($resolver);
-```
-
-As of 3.3.0, you should pass the constructed resolver into the identifier:
+Or pass the constructed resolver directly into the identifier configuration:
 
 ``` php
 $resolver = new \App\Identifier\Resolver\CustomResolver();
diff --git a/docs/en/identity-object.md b/docs/en/identity-object.md
@@ -80,15 +80,15 @@ class User extends Entity implements IdentityInterface
     /**
      * Authentication\IdentityInterface method
      */
-    public function getIdentifier()
+    public function getIdentifier(): array|string|int|null
     {
         return $this->id;
     }
 
     /**
      * Authentication\IdentityInterface method
      */
-    public function getOriginalData()
+    public function getOriginalData(): \ArrayAccess|array
     {
         return $this;
     }
diff --git a/docs/en/middleware.md b/docs/en/middleware.md
@@ -48,9 +48,7 @@ public function getAuthenticationService(ServerRequestInterface $request): Authe
 
     // Web authentication
     // Support sessions and form login.
-    $service->loadAuthenticator('Authentication.Session', [
-        'identifier' => 'Authentication.Password',
-    ]);
+    $service->loadAuthenticator('Authentication.Session');
     $service->loadAuthenticator('Authentication.Form', [
         'identifier' => 'Authentication.Password',
     ]);
diff --git a/docs/en/migration-from-the-authcomponent.md b/docs/en/migration-from-the-authcomponent.md
@@ -38,9 +38,7 @@ authenticators.
 
 - **Authenticators** take the incoming request and try to extract
   identification credentials from it. If credentials are found, they
-  are passed to a collection of identifiers where the user is located.
-  For that reason authenticators take an IdentifierCollection as first
-  constructor argument.
+  are passed to an identifier where the user is located.
 - **Identifiers** verify identification credentials against a storage
   system. eg. (ORM tables, LDAP etc) and return identified user data.
 
@@ -84,10 +82,9 @@ class Application extends BaseApplication implements AuthenticationServiceProvid
      * Returns a service provider instance.
      *
      * @param \Psr\Http\Message\ServerRequestInterface $request Request
-     * @param \Psr\Http\Message\ResponseInterface $response Response
      * @return \Authentication\AuthenticationServiceInterface
      */
-    public function getAuthenticationService(ServerRequestInterface $request) : AuthenticationServiceInterface
+    public function getAuthenticationService(ServerRequestInterface $request): AuthenticationServiceInterface
     {
         $service = new AuthenticationService();
         // Configure the service. (see below for more details)
@@ -198,7 +195,7 @@ public function login()
     }
 
     // display error if user submitted and authentication failed
-    if ($this->request->is(['post'])) {
+    if ($this->request->is('post')) {
         $this->Flash->error('Invalid username or password');
     }
 }
@@ -235,7 +232,7 @@ use `setIdentity()`:
 
 ``` php
 // Assume you need to read a user by access token
-$user = $this->Users->find('byToken', ['token' => $token])->first();
+$user = $this->Users->find('byToken', token: $token)->first();
 
 // Persist the user into configured authenticators.
 $this->Authentication->setIdentity($user);

Original file line number	Diff line number	Diff line change
`@@ -80,15 +80,15 @@ class User extends Entity implements IdentityInterface`
`80`	`80`	`/**`
`81`	`81`	`* Authentication\IdentityInterface method`
`82`	`82`	`*/`
`83`		`- public function getIdentifier()`
	`83`	`+ public function getIdentifier(): array\|string\|int\|null`
`84`	`84`	`{`
`85`	`85`	`return $this->id;`
`86`	`86`	`}`
`87`	`87`
`88`	`88`	`/**`
`89`	`89`	`* Authentication\IdentityInterface method`
`90`	`90`	`*/`
`91`		`- public function getOriginalData()`
	`91`	`+ public function getOriginalData(): \ArrayAccess\|array`
`92`	`92`	`{`
`93`	`93`	`return $this;`
`94`	`94`	`}`